Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa
File: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (raw, json)
Hash identifier: +plvagJTEWEKvn5SZaftcn0qBGmFNqSMLPgdfy0xJAc=
Subject key identifier: 71:D0:D6:9D:8D:8A:41:5E:AB:03:42:0A:48:A2:6F:56:D8:A8:4A:83
Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7
Certificate serial: 1F7A9D0F1C662D65770981F1556431DAD0DFF37D
Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa
Signing time: Mon 24 Jun 2024 09:00:02 +0000
ROA not before: Mon 24 Jun 2024 08:55:02 +0000
ROA not after: Mon 23 Jun 2025 09:00:02 +0000
asID: 149710
IP address blocks: 2001:df6:5300::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:7a:9d:0f:1c:66:2d:65:77:09:81:f1:55:64:31:da:d0:df:f3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7
Validity
Not Before: Jun 24 08:55:02 2024 GMT
Not After : Jun 23 09:00:02 2025 GMT
Subject: CN=71D0D69D8D8A415EAB03420A48A26F56D8A84A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a4:95:04:3d:a6:fe:dd:35:38:d4:57:6c:d2:
c9:71:fb:8b:71:1f:4b:14:83:33:e1:73:3e:6e:7d:
35:56:b6:57:ff:92:a1:cc:33:46:4b:da:72:fc:83:
a3:af:08:60:9b:b0:ed:a7:15:0e:03:26:55:21:80:
52:62:6d:9e:54:b3:2e:18:08:44:e0:ac:b3:47:bc:
68:b1:eb:34:7d:d4:27:68:0e:cb:11:a7:3c:7c:5a:
5d:18:49:0a:a7:03:53:62:b8:fb:6a:69:7f:77:f7:
cc:af:c9:0d:8a:37:7e:ce:00:5a:19:00:b7:5d:a0:
48:b2:7e:f2:bb:f7:5d:53:d9:2b:f7:da:bc:3c:53:
86:01:10:69:b6:8a:41:3f:60:84:7e:ca:d3:f1:73:
84:ec:ad:81:2a:92:4e:b3:45:0a:c6:ea:8b:e2:73:
47:2c:4c:87:01:c8:1f:4f:1c:6c:79:72:37:36:00:
d2:06:b7:c7:79:fb:32:a4:66:f6:31:6c:cf:e2:b3:
d1:56:ba:fb:bd:0e:67:db:95:f0:71:0b:39:a1:0e:
1b:4a:2a:8f:d1:de:72:e6:52:0e:02:65:08:6f:c4:
af:7e:87:56:88:5d:0c:e0:65:09:d8:89:be:bc:d5:
9a:14:61:97:df:3f:f8:89:57:bd:16:54:43:06:55:
6c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D0:D6:9D:8D:8A:41:5E:AB:03:42:0A:48:A2:6F:56:D8:A8:4A:83
X509v3 Authority Key Identifier:
keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df6:5300::/48
Signature Algorithm: sha256WithRSAEncryption
34:2e:98:0a:70:13:38:3b:99:7b:f2:83:99:d0:94:42:2c:c2:
99:96:97:22:0d:ec:67:74:d5:dc:6c:71:2d:70:45:6f:bc:58:
5a:65:9b:b7:39:d8:d4:af:00:59:bd:e2:dd:95:74:72:e4:53:
57:a5:92:8f:cb:1b:46:62:49:43:ef:29:1c:8e:2d:fe:4a:7c:
67:21:66:dd:6e:42:16:31:66:4d:be:b3:47:bf:54:a3:c6:7b:
07:83:90:24:19:f9:51:b3:5d:ce:39:9b:72:02:c0:4c:40:49:
00:6f:0b:47:69:ff:c3:17:cf:0d:92:d4:a6:e7:51:21:57:45:
49:92:a5:97:0a:34:59:35:6b:26:4c:ef:c5:4c:d1:a8:35:5c:
6c:43:73:e6:88:24:25:66:f1:3a:e8:6a:89:c9:12:07:a6:f9:
5a:12:bb:cb:d0:c5:05:58:87:b3:31:0d:40:82:30:e8:93:bd:
e8:87:f5:39:1a:47:ee:c6:5f:5c:65:a4:af:95:0a:73:b5:fd:
78:3b:e8:1c:ef:82:a5:52:2a:a3:ac:6f:5f:03:b5:a9:0f:0c:
cd:2a:bd:88:05:59:84:c1:e7:52:26:96:77:48:d7:d8:d9:f1:
8d:f8:5f:b1:b6:56:92:f5:7a:55:56:37:28:92:32:94:59:37:
d4:ff:d6:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:23:59 2025 by rpki-client